WAGO: PFC200 Denial of Service due to the number of connections to the runtime
Description
On WAGO PFC200 devices in different firmware versions with special crafted packets an attacker with network access to the device could cause a denial of service for the login service of the runtime.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Crafted network packets can cause a denial of service on the login service of WAGO PFC200 devices.
Vulnerability
On WAGO PFC200 devices running multiple firmware versions, an attacker with network access can send specially crafted packets to cause a denial of service condition on the login service of the runtime. The exact firmware versions affected are not specified in the available references [1].
Exploitation
An attacker needs only network connectivity to the target device. By sending a series of specially crafted packets to the device, the login service becomes unresponsive. No authentication or prior access is required.
Impact
Successful exploitation results in a denial of service of the login service, preventing legitimate users from authenticating to the runtime. No data integrity or confidentiality is compromised.
Mitigation
As of the publication date of this CVE, no specific firmware update or workaround has been disclosed in the available references [1]. Users should monitor the vendor's advisory for future patches.
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
3- WAGO/Series Ethernet Controllerv5Range: 750-8202/xxx-xxx
- WAGO/Series PFC200 Controllerv5Range: 750-823
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- cert.vde.com/en-us/advisories/vde-2021-014mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.